Cobalt Stike Beacon Detected – 88[.]218[.]192[.]130:8086
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 39[.]104[.]81[.]101:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]43[.]123[.]21:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]150[.]136:888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]34[.]23[.]227:3307
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Dark Angel Victim: ANDRADE GUTIERREZ & ZAGOPE
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Dark Angel Victim: Gentex Corporation
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Dark Angel Victim: Incredible Technologies
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Iranian Agrius Hackers Targeting Israeli Organizations with Moneybird Ransomware
The Iranian threat actor known as Agrius is leveraging a new ransomware strain called Moneybird in its attacks targeting Israeli...
GUAC 0.1 Beta: Google’s Breakthrough Framework for Secure Software Supply Chains
Google on Wednesday announced the 0.1 Beta version of GUAC (short for Graph for Understanding Artifact Composition) for organizations to...
Barracuda warns of email gateways breached via zero-day flaw
Barracuda, a company known for its email and network security solutions, warned customers today that some of their Email Security...
New PowerExchange malware backdoors Microsoft Exchange servers
A new PowerShell-based malware dubbed PowerExchange was used in attacks linked to APT34 Iranian state hackers to backdoor on-premise Microsoft...
Iranian hackers use new Moneybird ransomware to attack Israeli orgs
Image: Bing Create A suspected Iranian state-supported threat actor known as 'Agrius' is now deploying a new ransomware strain named...
Hackers target 1.5M WordPress sites with cookie consent plugin exploit
Ongoing attacks are targeting an Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability in a WordPress cookie consent plugin named Beautiful Cookie...
Chinese hackers breach US critical infrastructure in stealthy attacks
Microsoft says a Chinese cyberespionage group it tracks as Volt Typhoon has been targeting critical infrastructure organizations across the United...
GitLab ‘strongly recommends’ patching max severity flaw ASAP
GitLab has released an emergency security update, version 16.0.1, to address a maximum severity (CVSS v3.1 score: 10.0) path traversal...
Posh C2 Detected – 3[.]84[.]141[.]94:443
The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...
CISA: CISA and Partners Release BianLian Ransomware Cybersecurity Advisory
CISA and Partners Release BianLian Ransomware Cybersecurity Advisory CISA, the Federal Bureau of Investigation (FBI), and the Australian Cyber Security...
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on May 16, 2023. These...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on May 16, 2023. These...
CISA: CISA Adds Seven Known Exploited Vulnerabilities to Catalog
CISA Adds Seven Known Exploited Vulnerabilities to Catalog CISA has added seven new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...
CISA: Cisco Releases Security Advisory for Small Business Series Switches
Cisco Releases Security Advisory for Small Business Series Switches Cisco released a security advisory to address multiple vulnerabilities affecting the...
CISA: CISA and Partners Update the #StopRansomware Guide, Developed through the Joint Ransomware Task Force (JRTF)
CISA and Partners Update the #StopRansomware Guide, Developed through the Joint Ransomware Task Force (JRTF) Today, CISA, the Federal Bureau...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
